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This action is in response to the communication filed on 3/12/2010. 
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DETAILED ACTION 



3 



Response to Arguments 



4 



Applicant's arguments filed 3/12/2010 have been fully considered but they are not 



5 



persuasive. 



6 



Regarding the applicants' argument pertaining to the rejection of claims 66-68 under 35 



7 USC 101, the examiner does not find the argument persuasive. While the amendment to the 

8 claims does limit the claims such that they no longer include a program per se, the scope of the 

9 claims now includes a transitory medium, which does not fall within one of the statutory 

10 categories of subject matter as explained below in the updated rejection of claims 66-68 under 35 

11 USC 101. 

12 Regarding the applicants argument that Gupta and Mitreuter do not teach that "the 

13 validity information further comprising public key information of a sending node comprising an 

14 identity of an entity from which the public key of the sending node can be obtained", the 

1 5 examiner does not find the argument persuasive. 

16 First, the examiner notes that not all the claims now include this exact language. In fact, 

17 claims 63-67 now recite that the validity information comprises "an entity from which the public 

18 key of the sending node can be obtained". After examining the instant specification for guidance 

19 regarding this newly claimed limitation, the examiner found that "a database" is one example of 

20 an entity, and that "entity" had not been defined specifically by the applicants. A database is 

21 simply a structured file of records. As such, the examiner believes that the broadest reasonable 

22 interpretation of "an entity" can include "a file". Therefore, a certificate containing the public 
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1 key meets the limitation of "an entity from which the public key of the sending node can be 

2 obtained". Therefore, the examiner has maintained the rejection of claims 63-67 in view of 

3 Gupta and Mitreuter. 

4 Further, it was well known for public key certificates to include "an identity" of itself, 

5 (it's certificate number for example), and as such would have been obvious to the ordinary 

6 person skilled in the art at the time of invention to have included the certificate number in the 

7 certificate. Therefore, the remainder of the independent claims remain obvious in view of Gupta 

8 and Mitreuter. 

9 Further still, if the examiner were to interpret the limitation of "an identity of an entity 

10 from which the public key of the sending node can be obtained" more specifically to mean an 

1 1 entity outside of the packet or packet header, the claims would still remain obvious in view of 

12 Gupta, Mitreuter, and Yamagishi et al. (US Patent Number 7,136,998). Yamagishi teaches that 

13 in place of a public key certificate itself, a URL where the public key certificate has been put can 

14 be provided, in order to allow the latest public key certificate to be obtained. 



15 All objections and rejections not set forth below have been withdrawn. 

1 6 Claims 1 ,2,4,11 -1 5,1 8,42,43,50-56,59, 60, 63-64 and 66-68 have been examined. 

1 7 Claim Rejections - 35 USC §101 

18 35 U.S.C. 101 reads as follows: 

1 9 Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 

20 any new and useful improvement thereof, may obtain a patent therefor, subject to the conditions and 

2 1 requirements of this title. 

22 

23 Claims 66-68 are rejected under 35 U.S.C. 101 because the claimed invention is directed 



24 to non-statutory subject matter. The claims are directed to a "computer readable storage medium 

25 comprising a computer program". In the event that such "computer readable storage media" 
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1 (hereinafter "media") are intended to be limited to the hardware and software necessary to 

2 transmit, transport, receive and process the computer program in such a manner as to enable the 

3 computer program to act as a computer component and realize its functionality, it is believed that 

4 the claims in question would be directed to patent-eligible subject matter (statutory). However, 

5 no such evidence that the embodiment covered by the claims in question which is directed to the 

6 "media" is limited to inclusion of such hardware and software elements exists. Therefore, it is 

7 believed that the "media" would reasonably be interpreted by one of ordinary skill as the abstract 

8 idea of any portion of a communication, including the forms of energy, per se, used in 

9 communications. Absent recitation of the hardware, the claims appear devoid of any physical 

10 articles or objects which may cooperate to achieve some function, and as such are not directed to 

11 a machine. Likewise, absent any such physical article or object, they cannot be directed to a 

12 manufacture. They are clearly not a series of steps or acts themselves, and as such are not a 

13 process. They are clearly not a composition of matter. Therefore, the claims in question do not 

14 appear to fall within a statutory category of invention as set forth in 35 USC 101 . 

1 5 Claim Rejections - 35 USC §103 

16 Claims 1-2, 15, 18, 42-43, 54-56, 59-60, and 63-64, and 66-68 are rejected under 35 

17 U.S.C. 103(a) as being unpatentable over Gupta et al. (US Patent Number 6,389,532) hereinafter 

1 8 referred to as Gupta, and further in view of Mitreuter et al. (US Patent Application Publication 

1 9 20030033375) hereinafter referred to as Mitreuter. 

20 Regarding claim 1, Gupta disclosed a method (See Gupta Fig. 1 Element 104, 108 or 

21 1 12), comprising the steps of: generating validity information for a packet (See Gupta Figs. 5-6 

22 and Col. 6 Paragraphs 2-4), wherein the validity information comprises all necessary information 
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1 required to perform a validity check of the packet (See Gupta Fig 7 and Col. 6 Paragraph 5 - Col. 

2 7 Paragraph 2); the validity information comprising algorithm information to be used for 

3 performing the validity check of the packet and no pre-established security association is needed 

4 to verify the packet and algorithm initialization information(See Gupta Fig. 3 and Col. 6 

5 Paragraphs 3-4); generating a packet header (302), comprising the validity information (See 

6 Gupta Fig. 3 and Col. 6 Paragraphs 3-4) ; and sending the packet including the packet header 

7 from a first network node to a second network node (See Gupta Col. 6 Paragraph 4), but Gupta 

8 failed to specifically teach the validity information further comprising public key information of 

9 a sending node comprising an identity of an entity from which the public key of the sending node 

10 can be obtained. 

1 1 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

12 key certificate containing the public key of the sender can be included in the packet header in 

13 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

14 Paragraph 0037). 

15 It would have been obvious to the ordinary person skilled in the art at the time of 

16 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

17 by included the public key certificate including the public key used to verify the packet signature 

18 in the packet header. This would have been obvious because the ordinary person skilled in the 

19 art would have been motivated to allow any recipient of the packet to readily verify the signature 

20 of the packet. Furthermore, it was well know in the art at the time of invention for public key 

21 certificates to include therein information identifying the public key certificate, such as the 

22 certificate number. Therefore, it would have been obvious to the ordinary person skilled in the 
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1 art at the time of invention to have included the certificate number in the public key certificate. 

2 This would have been obvious because the ordinary person skilled in the art would have been 

3 motivated to utilize a conventional public key certificate. 

4 Regarding claim 18, Gupta disclosed an apparatus comprising: validity information 

5 generating means for generating validity information for a packet (See Gupta Figs. 5-6 and Col. 

6 6 Paragraphs 2-4); packet header generating means for generating a header for the packet, 

7 comprising the validity information (See Gupta Fig. 3 and Col. 6 Paragraphs 3-4); and sending 

8 means for sending the packet including the header to a receiving network node (See Gupta Col. 6 

9 Paragraph 4), wherein the validity information comprises all necessary information required for 

10 performing a validity check of the packet and no pre-established security association is needed to 

1 1 verify the packet (See Gupta Fig 7 and Col. 6 Paragraph 5 - Col. 7 Paragraph 2) and the validity 

12 information comprises algorithm information to be used for performing the validity check of the 

13 packet (See Gupta Col. 6 Paragraphs 3-4), wherein the algorithm information comprises values 

14 to initialize an algorithm to be used to perform the validity check of the packet (See Gupta Col. 6 

15 Paragraphs 3-4, the data, the key index, the signature, or the fingerprint, for example), but Gupta 

16 failed to specifically teach the validity information further comprising public key information of 

17 a sending node comprising an identity of an entity from which the public key of the sending node 

1 8 can be obtained. 

19 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

20 key certificate containing the public key of the sender can be included in the packet header in 

2 1 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

22 Paragraph 0037). 
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1 It would have been obvious to the ordinary person skilled in the art at the time of 

2 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

3 by included the public key certificate including the public key used to verify the packet signature 

4 in the packet header. This would have been obvious because the ordinary person skilled in the 

5 art would have been motivated to allow any recipient of the packet to readily verify the signature 

6 of the packet. Furthermore, it was well know in the art at the time of invention for public key 

7 certificates to include therein information identifying the public key certificate, such as the 

8 certificate number. Therefore, it would have been obvious to the ordinary person skilled in the 

9 art at the time of invention to have included the certificate number in the public key certificate. 

10 This would have been obvious because the ordinary person skilled in the art would have been 

1 1 motivated to utilize a conventional public key certificate. 

12 Regarding claim 42, Gupta disclosed an apparatus, comprising: a validity information 

13 generator configured to generate validity information for a packet (Sec Gupta Figs. 5-6 and Col. 

14 6 Paragraphs 2-4); a packet header generator configured to generate a header for the packet, 

15 comprising the validity information (See Gupta Fig. 3 and Col. 6 Paragraphs 3-4); and a 

16 transmitter configured to send the packet including the header to a receiving network node (See 

17 Gupta Col. 6 Paragraph 4), wherein the validity information comprises all necessary information 

1 8 required to perform a validity check of the packet and no pre-established security association is 

19 needed to verify the packet, and the validity information comprises algorithm information to be 

20 used to perform the validity check of the packet (See Gupta Fig 7 and Col. 6 Paragraph 3 - Col. 7 

21 Paragraph 2), wherein the algorithm information comprises values to initialize an algorithm to be 

22 used to perform the validity check of the packet (See Gupta Col. 6 Paragraphs 3-4, the data, the 
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1 key index, the signature, or the fingerprint, for example), but Gupta failed to specifically teach 

2 the validity information further comprising public key information of a sending node comprising 

3 an identity of an entity from which the public key of the sending node can be obtained. 

4 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

5 key certificate containing the public key of the sender can be included in the packet header in 

6 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

7 Paragraph 0037). 

8 It would have been obvious to the ordinary person skilled in the art at the time of 

9 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

10 by included the public key certificate including the public key used to verify the packet signature 

11 in the packet header. This would have been obvious because the ordinary person skilled in the 

12 art would have been motivated to allow any recipient of the packet to readily verify the signature 

13 of the packet. Furthermore, it was well know in the art at the time of invention for public key 

14 certificates to include therein information identifying the public key certificate, such as the 

15 certificate number. Therefore, it would have been obvious to the ordinary person skilled in the 

16 art at the time of invention to have included the certificate number in the public key certificate. 

17 This would have been obvious because the ordinary person skilled in the art would have been 

1 8 motivated to utilize a conventional public key certificate. 

19 Regarding claim 55, Gupta disclosed an apparatus, comprising: a receiver configured to 

20 receive packets from a sending network node (See Gupta Fig. 1 Element 108, Fig. 7 and Col. 6 

21 Paragraph 5); and a checker configured to perform a validity check of a packet by referring to 

22 validity information contained in a header of the packet and no pre-established security 
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1 association is needed to verify the packet (See Gupta Fig. 7 and Col. 7 Paragraph 2), wherein the 

2 validity information comprises all necessary information required to perform the validity check 

3 of the packet (See Gupta Fig 7 and Col. 6 Paragraph 5 - Col. 7 Paragraph 2), and the validity 

4 information comprises algorithm information to be used to perform the validity check of the 

5 packet (See Gupta Col. 6 Paragraphs 3-4), wherein the algorithm information comprises values 

6 to initialize an algorithm to be used to perform the validity check of the packet (See Gupta Col. 6 

7 Paragraphs 3-4, the data, the key index, the signature, or the fingerprint, for example), but Gupta 

8 failed to specifically teach the validity information further comprising public key information of 

9 a sending node comprising an identity of an entity from which the public key of the sending node 

10 can be obtained. 

1 1 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

12 key certificate containing the public key of the sender can be included in the packet header in 

13 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

14 Paragraph 0037). 

15 It would have been obvious to the ordinary person skilled in the art at the time of 

16 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

17 by included the public key certificate including the public key used to verify the packet signature 

18 in the packet header. This would have been obvious because the ordinary person skilled in the 

19 art would have been motivated to allow any recipient of the packet to readily verify the signature 

20 of the packet. Furthermore, it was well know in the art at the time of invention for public key 

21 certificates to include therein information identifying the public key certificate, such as the 

22 certificate number. Therefore, it would have been obvious to the ordinary person skilled in the 
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1 art at the time of invention to have included the certificate number in the public key certificate. 

2 This would have been obvious because the ordinary person skilled in the art would have been 

3 motivated to utilize a conventional public key certificate. 

4 Regarding claim 59, Gupta disclosed an apparatus, comprising: a transmitter configured 

5 to forward packets from a sending network node to a receiving network node (See Gupta Fig. 7 

6 and Col. 6 Paragraph 5); and a checker configured to perform a validity check of a packet by 

7 referring to validity information contained in a header of the packet (See Gupta Fig. 7 and Col. 7 

8 Paragraph 2), wherein the validity information comprises all necessary information required to 

9 perform a validity check of the packet and no pre-established security association is needed to 

10 verify the packet (See Gupta Fig 7 and Col. 6 Paragraph 5 - Col. 7 Paragraph 2), and the validity 

1 1 information comprises algorithm information to be used to perform the validity check of the 

12 packet (See Gupta Col. 6 Paragraphs 3-4), wherein the algorithm information comprises values 

13 to initialize an algorithm to be used to perform the validity check of the packet (See Gupta Col. 6 

14 Paragraphs 3-4, the data, the key index, the signature, or the fingerprint, for example), but Gupta 

15 failed to specifically teach the validity information further comprising public key information of 

16 a sending node comprising an identity of an entity from which the public key of the sending node 

17 can be obtained. 

1 8 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

19 key certificate containing the public key of the sender can be included in the packet header in 

20 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

21 Paragraph 0037). 
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1 It would have been obvious to the ordinary person skilled in the art at the time of 

2 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

3 by included the public key certificate including the public key used to verify the packet signature 

4 in the packet header. This would have been obvious because the ordinary person skilled in the 

5 art would have been motivated to allow any recipient of the packet to readily verify the signature 

6 of the packet. Furthermore, it was well know in the art at the time of invention for public key 

7 certificates to include therein information identifying the public key certificate, such as the 

8 certificate number. Therefore, it would have been obvious to the ordinary person skilled in the 

9 art at the time of invention to have included the certificate number in the public key certificate. 

10 This would have been obvious because the ordinary person skilled in the art would have been 

1 1 motivated to utilize a conventional public key certificate. 

12 Regarding claims 63 and 67, Gupta disclosed a method comprising: receiving packets 

13 (See Gupta Fig 7 and Col. 6 Paragraph 5 - Col. 7 Paragraph 2); and performing a validity check 

14 of a packet by referring to validity information contained in a header of the packet (See Gupta 

15 Fig. 7 and Col. 7 Paragraph 2), wherein the validity information comprises all necessary 

16 information required for performing the validity check of the packet and no pre-established 

17 security association is needed to verify the packet, the validity information comprising algorithm 

18 information to be used for performing the validity check of the packet (See Gupta Fig 7 and Col. 

19 6 Paragraph 3 - Col. 7 Paragraph 2), wherein the algorithm information comprises values to 

20 initialize an algorithm to be used to perform the validity check of the packet (See Gupta Col. 6 

21 Paragraphs 3-4, the data, the key index, the signature, or the fingerprint, for example), but Gupta 

22 failed to specifically teach the validity information further comprising public key information of 
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1 a sending node comprising an entity from which the public key of the sending node can be 

2 obtained. 

3 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

4 key certificate containing the public key of the sender can be included in the packet header in 

5 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

6 Paragraph 0037). 

7 It would have been obvious to the ordinary person skilled in the art at the time of 

8 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

9 by included the public key certificate including the public key used to verify the packet signature 

10 in the packet header. This would have been obvious because the ordinary person skilled in the 

11 art would have been motivated to allow any recipient of the packet to readily verify the signature 

12 of the packet. 

13 Regarding claim 64, Gupta disclosed a method comprising: forwarding received packets 

14 (Gupta Col. 7 Paragraph 2); and performing means for performing a validity check of a packet 

15 by referring to validity information contained in a header of the packet (Gupta Col. 7 Paragraph 

16 2), wherein the validity information comprises all necessary information required for performing 

17 a validity check of the packet and no pre-established security association is needed to verify the 

1 8 packet, the validity information comprising algorithm information to be used for performing the 

19 validity check of the packet (See Gupta Fig 7 and Col. 6 Paragraph 3 - Col. 7 Paragraph 2), 

20 wherein the algorithm information comprises values to initialize an algorithm to be used to 

21 perform the validity check of the packet (See Gupta Col. 6 Paragraphs 3-4, the data, the key 

22 index, the signature, or the fingerprint, for example), but Gupta failed to specifically teach the 
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1 validity information further comprising public key information of a sending node comprising an 

2 entity from which the public key of the sending node can be obtained. 

3 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

4 key certificate containing the public key of the sender can be included in the packet header in 

5 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

6 Paragraph 0037). 

7 It would have been obvious to the ordinary person skilled in the art at the time of 

8 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

9 by included the public key certificate including the public key used to verify the packet signature 

10 in the packet header. This would have been obvious because the ordinary person skilled in the 

11 art would have been motivated to allow any recipient of the packet to readily verify the signature 

12 of the packet. 

13 Regarding claim 66, Gupta disclosed a computer readable storage medium comprising a 

14 computer program (See Gupta Fig. 1 Element 104, 108 or 1 12), that when executed controls a 

15 processor to perform: generating validity information for a packet (See Gupta Figs. 5-6 and Col. 

16 6 Paragraphs 2-4), wherein the validity information comprises all necessary information required 

17 to perform a validity check of the packet (See Gupta Fig 7 and Col. 6 Paragraph 5 - Col. 7 

1 8 Paragraph 2); the validity information comprising algorithm information to be used for 

19 performing the validity check of the packet and no pre-established security association is needed 

20 to verify the packet and algorithm initialization information(See Gupta Fig. 3 and Col. 6 

21 Paragraphs 3-4); generating a packet header (302), comprising the validity information (See 

22 Gupta Fig. 3 and Col. 6 Paragraphs 3-4) ; and sending the packet including the packet header 
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1 from a first network node to a second network node (See Gupta Col. 6 Paragraph 4), but Gupta 

2 failed to specifically teach the validity information further comprising public key information of 

3 a sending node comprising an entity from which the public key of the sending node can be 

4 obtained. 

5 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

6 key certificate containing the public key of the sender can be included in the packet header in 

7 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

8 Paragraph 0037). 

9 It would have been obvious to the ordinary person skilled in the art at the time of 

1 0 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

1 1 by included the public key certificate including the public key used to verify the packet signature 

12 in the packet header. This would have been obvious because the ordinary person skilled in the 

13 art would have been motivated to allow any recipient of the packet to readily verify the signature 

14 of the packet. 

15 Regarding claim 68, Gupta disclosed a computer readable storage medium comprising a 

16 computer program (See Gupta Fig. 1 Element 104, 108 or 1 12), that when executed controls a 

17 processor to perform: forwarding received packets (Gupta Col. 7 Paragraph 2); and performing 

1 8 means for performing a validity check of a packet by referring to validity information contained 

19 in a header of the packet (Gupta Col. 7 Paragraph 2), wherein the validity information comprises 

20 all necessary information required for performing a validity check of the packet and no pre- 

2 1 established security association is needed to verify the packet, the validity information 

22 comprising algorithm information to be used for performing the validity check of the packet (See 



Application/Control Number: 1 0/72 1 ,504 Page 1 5 

Art Unit: 2431 

1 Gupta Fig 7 and Col. 6 Paragraph 3 - Col. 7 Paragraph 2), wherein the algorithm information 

2 comprises values to initialize an algorithm to be used to perform the validity check of the packet 

3 (See Gupta Col. 6 Paragraphs 3-4, the data, the key index, the signature, or the fingerprint, for 

4 example), but Gupta failed to specifically teach the validity information further comprising 

5 public key information of a sending node comprising an identity of an entity from which the 

6 public key of the sending node can be obtained. 

7 Mitreuter teaches that in an analogous art for generating and signing packets, the public 

8 key certificate containing the public key of the sender can be included in the packet header in 

9 order to allow the packet signature to be readily verified by the recipient of the packet (Mitreuter 

10 Paragraph 0037). 

11 It would have been obvious to the ordinary person skilled in the art at the time of 

12 invention to have employed the teachings of Mitreuter in the packet verification system of Gupta 

13 by included the public key certificate including the public key used to verify the packet signature 

14 in the packet header. This would have been obvious because the ordinary person skilled in the 

15 art would have been motivated to allow any recipient of the packet to readily verify the signature 

16 of the packet. Furthermore, it was well know in the art at the time of invention for public key 

17 certificates to include therein information identifying the public key certificate, such as the 

1 8 certificate number. Therefore, it would have been obvious to the ordinary person skilled in the 

19 art at the time of invention to have included the certificate number in the public key certificate. 

20 This would have been obvious because the ordinary person skilled in the art would have been 

2 1 motivated to utilize a conventional public key certificate. 
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1 Regarding claims 2, 43, 56 and 60, Gupta and Mitreuter disclosed that the generating of 

2 the validity information comprises generating security information indicating security services 

3 applied to the packet (See Gupta Col. 5 Paragraph 7). 

4 Regarding claim 15 and 54, Gupta and Mitreuter disclosed signing the packet using a 

5 private key corresponding to the public key indicated by the validity information in the packet 

6 header in a sending network node (See Gupta Col. 6 Paragraph 4 and Mitreuter Paragraph 0037). 

7 Claims 4, 12-14, and 5 1-53 are rejected under 35 U.S.C. 103(a) as being unpatentable 

8 over Gupta and Mitreuter as applied to claims 1 and 42 above, and further in view of Naudus 

9 (US Patent Number 6,202,08 1). 

10 Regarding claims 12-14, and 5 1-53, Gupta and Mitreuter disclosed validation of packets, 

1 1 but failed to disclose that the step of generating the validity information comprises generating an 

12 information item for preventing replay attacks. 

13 Naudus teaches that in a packet filtering system, packets should include timestamps in 



14 order to prevent replay attacks. Naudus further teaches that "[rjeplay attacks occur when a 

15 malicious user gains access to a router or other network device on a computer network that is 

16 forwarding data packets. Legitimate data packets are intercepted and then re-sent at a later time 

17 to allow the malicious user to appear as a legitimate user. A firewall helps prevent replay attacks 

18 by checking a time-stamp in the data packet that prevents the data packets from being re-sent at a 

19 later time." (See Naudus Col. 2 Paragraph 4). 

20 It would have been obvious to the ordinary person skilled in the art at the time of 

21 invention to employ the teachings of Naudus in the packet validity checking system of Gupta and 

22 Mitreuter by including a timestamp in each packet and verifying the timestamp at the validity 
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1 checker. This would have been obvious because the ordinary person skilled in the art would 

2 have been motivated to prevent replay attacks in the network. In this combination, the inclusion 

3 of a timestamp in each packet, in itself, is an indication of a procedure to be used for anti replay 

4 attacks. 

5 Regarding claim 4, Gupta and Mitreuter did not specifically teach that the step of 

6 generating the algorithm information comprises generating the algorithm information which 

7 indicates an algorithm to be used for performing the validity check of the packet. However, as 

8 taught by Naudus, in Col. 6 Line 60 - Col. 7 Line 7, it is well known to include in the packet 

9 header, an identification of which algorithm was used to sign the packet. As such, it would have 

10 been obvious to have included this information within the packet. Furthermore, the ordinary 

1 1 person skilled in the art at the time of invention would have recognized that this would allow for 

12 the user of a multiplicity of signature algorithms, as well as allowing updating of the signature 

13 algorithms in the future, and therefore it would have been obvious to have included an indication 

14 of the signature algorithm in the packet. 

15 Claims 11, and 50 are rejected under 35 U.S.C. 103(a) as being unpatentable over Gupta 

16 and Mitreuter as applied to claims 6 and 23 above, and further in view of Nikander (US Patent 

17 Number 7,155,500). 

1 8 Gupta and Mitreuter disclosed including public key information within the packets, 

19 including the public key itself within the packets, but failed to specifically disclose that the step 

20 of generating the public key information comprises generating public key verification 

2 1 information indicating information in order to verify that the public key actually belongs to the 
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1 sending node. Gupta did disclose that the public and private key pairs can be generated and 

2 stored in a certification server (See Col. 4 Paragraph 2). 

3 Nikander teaches that by including the certificate of the public key, the receiving host can 

4 verify that the public key is truly owned by the sender (See Nikander Col. 10 Line 50 - Col. 12 

5 Line 9). 

6 It would have been obvious to the ordinary person skilled in the art at the time of 



7 invention to employ the teachings of Nikander in the packet verification system of Gupta and 

8 Mitreuter by including the public key certificate within each packet and verifying that the sender 

9 of each packet owned the public key used to sign the packet. This would have been obvious 

10 because the ordinary person skilled in the art would have been motivated to ensure that a 

1 1 malicious node was not claiming to be a different node. 



12 Conclusion 

1 3 Claims 1.2.4.11-15.18.42.43. 50-56. 59. 60. 63-64 and 66-68 have been rejected. 

14 THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 

15 policy as set forth in 37 CFR 1 .136(a). 

16 A shortened statutory period for reply to this final action is set to expire THREE 

17 MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 

1 8 MONTHS of the mailing date of this final action and the advisory action is not mailed until after 

19 the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 

20 will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 

21 CFR 1 .136(a) will be calculated from the mailing date of the advisory action. In no event, 
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1 however, will the statutory period for reply expire later than SIX MONTHS from the mailing 

2 date of this final action. 

3 Any inquiry concerning this communication or earlier communications from the 

4 examiner should be directed to MATTHEW T. HENNING whose telephone number is 

5 (571)272-3790. The examiner can normally be reached on M-F 8-4. 

6 If attempts to reach the examiner by telephone are unsuccessful, the examiner's 

7 supervisor, William Korzuch can be reached on (571)272-7589. The fax phone number for the 

8 organization where this application or proceeding is assigned is 571-273-8300. 

9 Information regarding the status of an application may be obtained from the Patent 

10 Application Information Retrieval (PAIR) system. Status information for published applications 

1 1 may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 

12 applications is available through Private PAIR only. For more information about the PAIR 

13 system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 

14 system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 

15 like assistance from a USPTO Customer Service Representative or access to the automated 

1 6 information system, call 800-786-9 1 99 (IN USA OR CANADA) or 57 1 -272- 1 000. 
17 

18 

1 9 /Matthew T Henning/ 

20 Primary Examiner, Art Unit 243 1 
21 



